Summary
This host is running Joomla and is prone to multiple cross site scripting vulnerabilities.
Impact
Successful exploitation will allow attacker to insert arbitrary HTML and script code, which will be executed in a user's browser session in the context of an affected site.
Impact Level: Application.
Solution
Upgrade to Joomla CMS 1.7.0 or later.
For updates refer to http://www.joomla.org/
Insight
Multiple flaws are caused by improper validation of user-supplied input via multiple parameters to 'index.php', which allows attackers to execute arbitrary HTML and script code on the web server.
Affected
Joomla CMS versions 1.6.x and 1.7.0-RC.
References
Severity
Classification
-
CVE CVE-2011-2710 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities